Microsoft Defender for Cloud OAuth Scopes

OAuth 2.0 derived

Microsoft Defender for Cloud publishes 1 OAuth 2.0 scope via the implicit flow. Scopes are the fine-grained permissions an application requests at authorization time to act against the Microsoft Defender for Cloud API on a user’s behalf.

This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.

Cloud SecurityCSPMCWPPCNAPPThreat ProtectionComplianceVulnerability ManagementAzure
Scopes: 1 Flows: implicit Method: derived

OAuth endpoints

Authorization URL
https://login.microsoftonline.com/common/oauth2/authorize
Flows
implicit

Scopes (1)

ScopeDescriptionFlows
user_impersonation impersonate your user account implicit

Source

OAuth Scopes

microsoft-defender-for-cloud-scopes.yml Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/microsoft-defender-for-cloud-openapi.yml
schemes:
- name: azure_auth
  source: openapi/microsoft-defender-for-cloud-openapi.yml
  flows:
  - flow: implicit
    authorizationUrl: https://login.microsoftonline.com/common/oauth2/authorize
  description: Azure Active Directory OAuth 2.0
scopes:
- scope: user_impersonation
  description: impersonate your user account
  flows:
  - implicit
  sources:
  - openapi/microsoft-defender-for-cloud-openapi.yml